hornet1

thanks digip, no we're not using native telnet. we also use IBM's TN3270 with ssl and port 623 to encrypt the stream but my question is if I have the self-assigned certificate (BTW, it's static and never expires) and I can do MITM attack, will I be able to decrypt, hijack or even downgrade the connection to a terminal ??

Hi, I am trying to simulate hacking attempts on our system we're using 3270 w/ssl to encrypt the data stream. with security exploits rising threats I wonder If I can use some of the techniques used by HTTP ssl exploits and convert it to 3270 terminals (sslstrip, hijacks) our public key is static and no access to our private keys 3270 = fancy telnet connection anyone familiar with 3270 or even telnet ???!!